Secretly Monopolizing the CPU Without Being Root

An anonymous reader writes "This year's Usenix security symposium includes a paper that implements a "cheat" utility, which allows any non-privileged user to run his/her program, e.g., like so 'cheat 99% program' thereby insuring that the programs would get 99% of the CPU cycles, regardless of the presence of any other applications in the system, and in some cases (like Linux), in a way that keeps the program invisible from CPU monitoring tools (like 'top'). The utility exclusively uses standard interfaces and can be trivially implemented by any beginner non-privileged programmer. Recent efforts to improve the support for multimedia applications make systems more susceptible to the attack. All prevalent operating systems but Mac OS X are vulnerable, though by this kerneltrap story, it appears that the new CFS Linux scheduler attempts to address the problem that were raised by the paper."

A Useful Tool

[Bios_Hakr]

I run several websites off of a single host. If I need to login to do maintenance during peak hours, I'm slowed by Apache and MySQL. This would be a nice utility if it were wrapped into SUDO.

gnome

[dattaway]

The gnome desktop for years has been hiding processes that h0rk the cpu.

What the?!

[Rik Sweeney]

Using up 99% of the CPU's easy!

#include

int main(int argc, char *argv[])
{
      while (1) {}

      return 0;
}

Re:A Useful Tool

[lecithin]

alias renice 'echo Renice\? You must mean kill -9.; kill -9 \!*'

First announced exploit..

[SuperBanana]

This year's Usenix security symposium includes a paper that implements a "cheat" utility, which allows any non-privileged user to run his/her program, e.g., like so 'cheat 99% program' thereby insuring that the programs would get 99% of the CPU cycles, regardless of the presence of any other applications in the system, and in some cases (like Linux), in a way that keeps the program invisible from CPU monitoring tools (like 'top').

Next up, a virus which senses bad grammar and punishes you by using 99% of your CPU. Seriously, somewhere a middle school English teacher is crying, and doesn't know why.

Re:What does this mean?

[Da Fokka]

If you reply, do so only to what I explicitly wrote. If I didn't write it, don't assume or infer it.

You gun-toting marxist redneck zealot astroturfers make me sick!

Back at NYIT we hacked the "nice" command...

[Thagg]

We had a user who insisted on abusing the "nice" command, to run his jobs at a higher priority. Pleading and cajoling didn't work, so we decided to get creative.

We changed nice so that whenever this particular user ran it, it lowered his priority by exactly as much as he was attempting to raise it.

He stopped coming to work soon after that. I suppose he had the last laugh though -- NYIT continued to pay him for another six months.

Thad

Inevitable reply

[lilomar]

My mother is a gun-toting marxist redneck zealot astroturfer, you insensitive clod!

Re:The "sue" command

[db32]

This is an outrage. You cannot 'sue' without lawyerd! What about the required functionality of 'sue --counter' and 'appeal'?!

The sysadmin's best defense isn't a new scheduler

[Anonymous Coward]

It's a baseball bat.

It doesn't even matter if these CPU-hogging processes can hide from "top" - you should already be making regular rounds of your users, even the ones you haven't caught doing anything wrong. Nobody questions it when you tell them, "You know what you did." Not when you're the one with the bat.

Re:Google-cache article

[Bobb Sledd]

and for those who dont have the time to read the paper...

it works by avoiding running during the exact moment of a clock tick (which would be the moment when CPU usage...

--Uhm... (looks at watch...) Say, I really don't have time for wordy summaries... could you maybe cut this down into about 10 words or less? Hurry it up! I ain't got all day!

Re:The "sue" command

[Wite_Noiz]

lawyerd

What a scary, scary thought...

Re:Google-cache article

[brunascle]

it run when OS not looking

Re:How It Works

[Anonymous Coward]

Like in Superman 3.

Re:First announced exploit..

[Minwee]

Somewhere a middle school English teacher is crying, and doesn't know why.

Do you think this might be related to that incident where thousands of English teachers all burst into flames moments after the first SMS-enabled phone was released?

Re:Hmmm...

[Anonymous Coward]

Wrong n00b!

Re:Security!

[Fred_A]

At least this paper should help dispel that old "Mac OS X is BSD with eye candy" meme. While reading it, it's hard not to realize that XNU (the OS X kernel) and the BSD kernel are completely different beasts. Figure 1 in particular drives the point home: it shows that with respect to the timing model used, you have OS X and RTOSs on one side, and FreeBSD, Linux, Windows etc. on the other.

I'll prove you wrong as soon as that stupid spinning beach ball of death lets me do something.

Re:Inevitable reply

[Some_Llama]

My mother is a Clod! you insensitive.. um.. nevermind.